Microsoft Defender XDR, Copilot for Security & Microsoft Sentinel now in one portal

Ғылым және технология

Manage SIEM, XDR, and threat intelligence from one place with new updates in the Microsoft Defender portal. Interact with all of your security data using generative AI with Microsoft Copilot for Security. View incidents across your digital estate-whether they're related to endpoints, SaaS services, your network in the cloud or on prem. This unified approach eliminates the inefficiency of SOC teams having to switch between multiple systems and manually piece together incident details, while maintaining all the current functionalities of each connected service.
Rob Lefferts joins Jeremy Chapman to discuss how the Defender experience has evolved into a unified security operations platform that combines threat detection, prevention, investigation, and response.
► QUICK LINKS:
00:00 - How Microsoft Defender has evolved
01:47 - Increase your SOC’s efficiency and speed
02:30 - GPT-based Copilot for Security
03:54 - See an active incident
05:45 - Attack disruption
06:48 - High-level recap with Security Copilot
07:39 - Unified advanced hunting
08:51 - Set it up
09:32 - Wrap up
► Link References
For more information, and to join our private preview go to aka.ms/SOCPlatform
► Unfamiliar with Microsoft Mechanics?
As Microsoft's official video series for IT, you can watch and share valuable content and demos of current and upcoming tech from the people who build it at Microsoft.
• Subscribe to our KZread: / microsoftmechanicsseries
• Talk with other IT Pros, join us on the Microsoft Tech Community: techcommunity.microsoft.com/t...
• Watch or listen from anywhere, subscribe to our podcast: microsoftmechanics.libsyn.com...
► Keep getting this insider knowledge, join us on social:
• Follow us on Twitter: / msftmechanics
• Share knowledge on LinkedIn: / microsoft-mechanics
• Enjoy us on Instagram: / msftmechanics
• Loosen up with us on TikTok: / msftmechanics
#SIEM #XDR #MicrosoftDefender #MicrosoftSentinel

Пікірлер: 26

  • @first-choicecyber
    @first-choicecyber6 ай бұрын

    This is good because having a single pane of glass makes my work so much more efficient. Im in a hybrid environment using a 3rd party tool to do that for my soc team.

  • @PaulShadwell
    @PaulShadwell7 ай бұрын

    This is amazing but when can we have it and how much will it cost?

  • @positivejamesuk
    @positivejamesuk7 ай бұрын

    Huge !! This is awesome

  • @eddisonlewis8099
    @eddisonlewis80996 ай бұрын

    AWESOME COLLABORATIVE CYBER TOOLS

  • @andyxlowe
    @andyxlowe6 ай бұрын

    Is there, or will there be lighthouse intergration for this portal ? Will this portal also allow intergration with MS workspace manager and co-management/N-tier options ?

  • @jstump1972
    @jstump19727 ай бұрын

    I noticed that you mentioned you disabled the user, but did you also revoke all 365 sessions?

  • @PAVANsuryatech
    @PAVANsuryatech8 күн бұрын

    This is awesome

  • @Israelxox
    @Israelxox6 ай бұрын

    It’s really confusing to follow all this rapid naming changes! 😮

  • @tiagovfs

    @tiagovfs

    6 ай бұрын

    I have created a mind map to try to help with the naming changes, check it out: cybergeeks.cloud/wp-content/uploads/2022/08/MicrosoftDefender_MindMap-1.pdf

  • @MikeThomasDrumss
    @MikeThomasDrumss6 ай бұрын

    as an entry level cybersecurity analyst is there traning or courses I can take to get experience working with this new XDR portal?

  • @user-mo5pl4vd8g
    @user-mo5pl4vd8g6 ай бұрын

    I love it❤️

  • @omarea757
    @omarea7576 ай бұрын

    Will I be able to grant access to Sentinel to my clients who are in different device groups using the RBAC that's already available on Microsoft Defender. As of now I am the only one using Sentinel as I cannot scope the information for each client.

  • @Kymkin2
    @Kymkin26 ай бұрын

    I curious about the training that will be coming out with these programs. Microsoft Certification paths changing and reworked.

  • @Sonicmask
    @Sonicmask7 ай бұрын

    Dam we just moved away frpm sentinel due to cost. This is amazing

  • @rapsoulhs
    @rapsoulhs4 ай бұрын

    How can we get access to the private preview? Would love to provide feedback and have a glimpse of what’s coming up next!

  • @DarkingDK1
    @DarkingDK16 ай бұрын

    Sorry I mightve missed it.. but when will this actually be available in my Defender portal? it looks great, but when is it GA so we can start using it?

  • @MSFTMechanics

    @MSFTMechanics

    6 ай бұрын

    We haven't announced a GA date yet for this. You can subscribe to Microsoft Security Copilot and AI updates to be amongst the first to know when it does: go.microsoft.com/fwlink/?linkid=2248632

  • @frankmvabaza
    @frankmvabaza7 ай бұрын

    Wow!

  • @laukage
    @laukage7 ай бұрын

    Wow! :O

  • @markszili2577
    @markszili25776 ай бұрын

    what about multi tenant Intune?

  • @masonby2000
    @masonby20006 ай бұрын

    I still see them as separate portal at my Azure portal. When unified portal will be available?

  • @MSFTMechanics

    @MSFTMechanics

    6 ай бұрын

    Yes, the separate experiences will also continue running.

  • @rolang4662
    @rolang4662Ай бұрын

    Hello, What if, I am just starting? is there a path to follow of videos or material to read ? Thank you

  • @MSFTMechanics

    @MSFTMechanics

    29 күн бұрын

    Everything is here: learn.microsoft.com/defender/

  • @KickOffAsh
    @KickOffAsh7 ай бұрын

    where is the dark mode ?

  • @tomlitor4979

    @tomlitor4979

    6 ай бұрын

    That is what I was waiting to see announced at this event.

Келесі